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Final rejection 

1. Claims 1-5, 7, 10, 12, 14, 15, 17, 19, 20, 24-28, and 30 are pending, claims 6, 9, 
13, 18, 22, and 29 are canceled, and claims 31-35 are newly added. 

2. Applicant's arguments filed on June 29, 2001 have been fully considered but are 
not persuasive. The Examiner would like to point out that this action is made final 
(MPEP 706.07a). 

Response to the applicant's argument 

3. The applicant amends/argues that 

a. The description of the ^synchronization process that is provided in Skret 
is clearly different than the element of the claims. 

b. Skret does not disclose storing a security sequence value as a 
resynchronization value. 

c. Skret does not provide a request for resynchronization that includes 
sending at least a representation of a resynchronization value. 

d. Trachewsky is not relevant to establishing secured communications. 

e. The meaning of "sequence" in Trachewsky is completely different than in 
the claims. 

f. Trachewsky is not concerned with any type of security sequence. 

g. Trachewsky has no relevance to the elements of the claims, and cannot 
properly be combined with Skret. 
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h. Dixon is not relevant to the storing of a ^synchronization value or the 
transmission of the ^synchronization value in the event of desynchronization. 

However, Examiner disagrees with applicant. 
. Regarding argument (a), the prior art record Skret Patent Number 5,001,755 
teaches all the claimed invention. Skret indicates that when a receiving node determines 
that it is out of sequence, such as in a power down and subsequent power up by a node, 
the node requests ^synchronization. (Skret, Col. 6 lines 7-13) Skret then indicates "the 
request for resynchronization must be sent in clear text since the receiver's encrypted 
transmitter, which is separate, will most likely be out of synchronization as well from a 
power down." (Skret, col. 6 lines 14-17) The receiving node transmits the clear text to 
the transmitting node to indicate that the receiving node is out of sequence. (Skret, 
col. 6 lines 8-11) In response to the clear text the transmitter node transmits a 
current pseudorandom number in encrypted form (a current pseudorandom 
number is encrypted in using starting pseudorandom key). Thereafter, the 
pseudorandom number sequence picks up where it left off. (Skret, col. 6 lines 18-23) 
The clear text is unencrypted resynchronization number value. Claim 1, claims 
requesting resynchronization of security sequence values, requesting resynchronization 
comprising sending at least a "representation" of said resynchronization value from 
said client device to said server device. Sending the representation of the 
resynchronization value is sending "clear text" because the clear text is the one who 
represents/indicates the receiving node when out of synchronization and according to the 
clear text value the transmitting node sends the resynchronization value ("current 
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pseudorandom number" which is encrypted by using starting pseudorandom key) 
to the receiver node in order to resynchronize the pseudorandom number sequence. 

(Skret, col. 6 lines 18-23) 

Regarding argument (b), the prior art of record Skret teaches storing a security 
sequence value as a resynchronization value, (see, Skret col. 6 lines 18-23) Skret encrypts 
the "current pseudorandom number" and the encrypted current pseudorandom number is 
sent to the receiving node in order to be resynchronized. 

Regarding argument (c), Skret teaches a request for resynchronization that 
includes sending at least a representation of a resynchronization value, (see, Skret col. 6 
lines 18-23) Skret encrypts the "current pseudorandom number" and the encrypted 
current pseudorandom number is sent to the receiving node in order to be resynchronized. 

Regarding argument (d), Examiner did not cite Trachewsky for establishing 
secured communications. However Trachewsky does teach establishing secured 
communication and the reference is relevant to establishing secured communications. 
(See, Trachewsky page 4 par. 0104; the nodes are interconnected by a transmission 
medium and said nodes can send and receive frames of data with sequence number via a 
communication medium). 

Regarding argument (e), The meaning of "sequence" in Trachewsky is not 
different than in the claims, (see, Trachewsky page 58 par. 0452, page 23-24 par. 0219, 
and Fig. 54; the CSS sequence is enumerated, and each sequence has an explicit rank 
in an order tree structure that determines the order of frame transmission and 
security sequence values/numbers are used to detect lost frames/desynchronization). 
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Regarding argument (f), Trachewsky is concerned with security sequence, (see, 
Trachewsky page 23-24 par. 0219 and fig. 54; using security sequence values/numbers to 
detect lost frames/desynchronization. If the received sequence number of the received 
frame is out of sequence, the channel state may be reset). 

Regarding argument (g), sufficient motivation was provided, to combine 
Trachewsky with Skret, on the first office action. 

Regarding argument (h), Examiner did not cite reference Dixon for storing of a 
resynchronization value or the transmission of the resynchronization value in the event of 
desynchronization, Instead Examiner cited Dixon for anti-replay filtering. 

Claim Rejections - 35 USC §102 

4. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a 
foreign country or in public use or on sale in this country, more than one year 
prior to the date of application for patent in the United States. 

5. Claims 1, 3-4, 20-21, 23, 25-28, and 30-32 are rejected under 35 U.S.C. 102(b) as 
being anticipated by Skret (US Patent Number: 5,001,755). 

As per claims 1 and 31, Skret teaches a method/machine-readable medium comprising: 
establishing secured communication between a client device and a server device, 
wherein communication is secured using, at least in part, a plurality of synchronized 
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security sequence values (Skret Col. 2 lines 57-col. 3 lines 11, and col. 5 lines 68-col. 6 
lines 1, col. 2 lines 18-27; new number is produced and incremented and transmitting 
nodes are synchronized and the synchronized communication is secured by number 
values/ security sequence values); 

storing a security sequence value from the plurality of synchronized security 
sequence values as a resynchronization value (Skret page 6 par. 7-26; storing security 
sequence value in clear text, where in the clear text is a number/value (unencrypted 
security sequence value) from the plurality of synchronized security sequence values 
as a resynchronization value. See page 2 lines 16-27 for plurality of synchronized 
security sequence values. New number for each transmission is produced and 
incremented during synchronization and if synchronization is lost due to power or other 
reasons, a resynchronization mechanism is provided to realign the pseudorandom number 
generators); 

detecting at least one event desynchronizing said secured communication (Skret 
Col. 2 lines 10-27); and 

requesting resynchronization of security sequence values (Skret Col. 6 liens 7-17; 
sending a message to the transmitting node indicating that it is out of synchronization and 
requesting resynchronization), requesting resynchronization comprising sending at least a 
representation of said resynchronization value from said client device to said server 
device (Skret Col. 6 lines 7-lines 26; sequence value is a number value in clear 
text/unencrypted representing the resynchronization value and according to the request 
made in clear text, the nodes are resynchronized). 
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As per claim 20, Skret teaches a method comprising: 

establishing secured communication between a security interface and a network 
node (Skret Col. 2 lines 10-27; receiving node is synchronized with the transmitting 
node), said security interface to resynchronize security sequence values between said 
security interface and said network node (Skret Col. 2 lines 10-27; a mechanism for 
resynchronizing two nodes); 

storing a first resynchronization value selected by said security interface (Skret 
Col. 5 lines 42-col. 6 lines 26); and 

resynchronizing said security sequence values after a break in said secured 
communication (Skret Col. 2 lines 10-27; resynchronizing mechanism is provided to 
resynchronize when synchronization is lost due to the loss of power or other reason), said 
resynchronizing comprising: 

sending said first resynchronization value from said security interface to said 
network node (Skret Col. 6 lines 1 8-26; transmitting resynchronization key between two 
nodes); 

sending said first resynchronization value and a second resynchronization value 
from said network node to said security interface (Skret Col. 6 lines 18-26; transmitting 
resynchronization key between two nodes, and new transmitting key may vary from the 
starting key); and 

reestablishing said secured communication using said first resynchronization 
value and said second resynchronization value (Skret Col. 2 lines 10-27 reestablishing 
mechanism to establish secure communication between two devices when 
synchronization is lost due to power). 
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As per claim 28, Skret teaches a method, comprising: 

establishing secured communication between a server device and a client device 

f 

(Skret Col. 5 lines 42-col. 6 lines 2; two devices are simultaneously initiate 
communication with each other), said secured communication using server a plurality of 
security sequence values synchronized with a plurality of client security sequence values 
(Skret Col. 7 lines 1-7 and see page 2 lines 16-27; for plurality of synchronized security 
sequence values. New number for each transmission is produced and incremented during 
synchronization and if synchronization is lost due to power or other reasons, a 
^synchronization mechanism is provided to realign the pseudorandom number 
generators); 

storing at least one client security sequence value in nonvolatile memory as a 
saved client security sequence value (Skret Col. 6 lines 42-col. 7 lines 2; sequence counts 
are stored in RAM); and , 

resynchronizing server and client security sequence values after a 
desynchronization event, resynchronizing including sending said saved client security 
sequence value from said nonvolatile memory to said server device and server device to 
said client device in a data packet with a server security sequence value (Skret Col. 2 
lines 10-27 and col. 6 lines 18-26; reestablishing/resynchronizing mechanism establishes 
secure communication between two devices when synchronization is lost due to power by 
sending the current pseudorandom number or key that represents security sequence value 
in encrypted form to the receiver device). 
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As per claim 3, Skret teaches the method, wherein sending at least a representation of 
said resynchronization value includes embedding said ^synchronization value in a 
header of a data packet, a payload of a data packet, both (Skret Fig. 3 A-3D). 

As per claims 4 and 32, Skret teaches the method/medium, further comprising 
periodically refreshing the stored synchronization value with a new value at a selected 
interval from security sequence values already used in a secured communication session 
(Skret Col. 4 lines 48-59). 

As per claim 21, Skret teaches a method, further comprising using a security interface as 
a state machine in network circuitry (Skret Col. 1 lines 1 1-24). 

As per claim 23, Skret teaches the method, further comprising storing said first 
resynchronization value in a nonvolatile storage medium (Skret Col. 6 lines 1-2). 

As per claim 25, Skret teaches the method, wherein reestablishing the secured 
communication comprises resynchronizing said secured communication using said first 
resynchronization value to resynchronize secured data sent from said security interface 
and using said second resynchronization value to resynchronize secured data sent from 
said network node (Skret Col. 2 lines 10-27, and col. 6 lines 18-26). 

As per claim 26, Skret teaches the method, further comprising resynchronizing the 
secured communication during a low-power state (Skret Col. 2 lines 10-27). 
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As per claim 27, Skret teaches the method, further comprising resynchronizing the 
secured communication while said network node lacks an active operating system and/or 
lacks an active microprocessor (Skret Col. 2 lines 10-27; loss of power or other reasons). 

As per claim 30, Skret teaches the method, said storing further comprising periodically 
refreshing said saved client security sequence value with a later security sequence value 
(Skret Col 4 lines 48-59, and Col. 6 lines 18-26). 

Claim Rejections - 35 USC §103 

6. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 

obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed 
or described as set forth in section 1 02 of this title, if the differences between the 
subject matter sought to be patented and the prior art are such that the subject 
matter as a whole would have been obvious at the time the invention was made to 
a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was 
made. 

7. Claims 5, 7-8, 11-12, 14-17, 19 and 33-35 are rejected under 35 U.S.C. 103(a) as 
being unpatentable over Skret (US Patent Number: 5,001,755) in view of Trachewsky et 
al. (Trachewsky, Pub. No.: US 2003/0206559 Al). 

As per claims 5 and 33, Skret teaches a method/machine-readable medium comprising: 
establishing secured communication between a client device and server device, 
wherein communication is secured using, at least in part, a plurality of synchronized 
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security sequence value(s) (Skret Col. 2 lines 57-col. 3 lines 11, and col. 5 lines 68-col. 6 
lines 1, col. 2 lines 1 8-27; new number is produced and incremented and transmitting 
nodes are synchronized and the synchronized communication is secured by number 
values/ security sequence values); 

receiving a request for ^synchronization from the client device, the request 
including at least a representation of a client resynchronization value, the client 
resynchronization value being a stored synchronized security value of the plurality of 
synchronized security sequence values (Skret page 6 par. 7-26; storing security sequence 
value in clear text, where in the clear text is a number/value (unencrypted security 
sequence value) from the plurality of synchronized security sequence values as a 
resynchronization value. See page 2 lines 16-27 for plurality of synchronized security 
sequence values. New number for each transmission is produced and incremented during 
synchronization and if synchronization is lost due to power or other reasons, a 
resynchronization mechanism is provided to realign the pseudorandom number 
generators); 

sending the representation of resynchronization value and at least a representation 
of a server resynchronization value from said server device to said client device (Skret 
Col. 6 lines 7-lines 26, Fig. 3A); and 

reestablishing secured communication using said client resynchronization value 
and server resynchronization value (Skret Col. 2 lines 10-27 reestablishing mechanism to 
establish secure communication between two devices when synchronization is lost due to 
power); 
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Skret does not explicitly teach acknowledging a client request for 
^synchronization, 

However Trachewsky discloses acknowledging a client request in using sequence 
value (Trachewsky Page 60 par. 0458); 

Therefore it would have been obvious to one having ordinary skill in the art at the 
time the invention was made to employ the teachings of Trachewsky with in the system 
of Skret because it would allow to verify the acknowledgment of a sequence to other 
nodes (Trachewsky Page 59 par. 0454) Therefore it would have been obvious to one 
having ordinary skill in the art at the time of the invention was made to acknowledge a 
client request for ^synchronization because it would verify a client that the 
communication is resynchronized securely after desynchronization event occur when 
power loss. 

As per claim 14, Skret teaches an apparatus, comprising; 

(a) a security interface to engage in secured communication with at least one 
network node, wherein said security interface and said at least one network node use a 
plurality of synchronized security sequence values at least in part to authenticate said 
secured communication (Skret Col. 2 lines 10-25); 

(i) a recorder to store at least one security sequence value (Skret col. 6 
lines 1-2); 

(ii) a desynchronization detector coupled to said security interface (Skret 
Col. 2 lines 10-27; desynchronization is detected due to the loss of power); 
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(iii) a ^synchronization requester to send the stored security sequence 
value to at least one network node after a desynchronization (Skret Col. 6 lines 7-lines 
26; ^synchronization request transmitted over a secure network between two devices); 
and 

(b) a security agent coupled to said at least one network node (Skret Col. 1 lines 
41-51; data communication network techniques to a security system), comprising: 

(i) a request receiver to recognize said stored security sequence value 
(Skret Col. 6 lines 18-27; request for resynchronization is received); 

Skret does not explicitly teach verifier to receive feedback from said at least one 
network node; 

(ii) an acknowledger to send said feedback from said security agent to said 
security interface; said feedback comprising said stored security sequence value and a 
node security sequence value from said network node. 

However Trachewsky discloses acknowledging a client request in using sequence 
value that reads on verifying to receive feedback from said at least one network node 
(Trachewsky Page 60 par. 458); 

(ii) an acknowledger to send said feedback from said security agent to said 
security interface; said feedback comprising said stored security sequence value and a 
node security sequence value from said network node (Trachewsky Page 60 par. 458); 
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Therefore it would have been obvious to one having ordinary skill in the art at the 
time the invention was made to employ the teachings of Trachewsky with in the system 
of Skret because it would allow to verify the acknowledgment of a sequence to other 
nodes (Trachewsky Page 59 par. 0454) Therefore it would have been obvious to one 
having ordinary skill in the art at the time of the invention was made to acknowledge a 
client request for ^synchronization because it would verify a client that the 
communication is resynchronized securely after desynchronization event occur when 
power loss. 

As per claim 17, Skret teaches a computer network security sequence value 
resynchronizer, comprising: 

(a) a sender having at least access to a nonvolatile random access memory (Skret 
Col. 4 lines 47-59); 

(b) said sender to transmit a request for resynchronization, the request including a 
data packet containing at least in part a stored sender resynchronization value from said 
nonvolatile random access memory over said computer network (Skret Fig. 3A, and Col. 
9 lines 21-43); and 

computer network to receive said sender resynchronization value from said sender 
(Skret Col. 13 lines 57-60); and returning said sender resynchronization value to said 
sender as security assurance (Skret Col. 13 lines 57-60); 

Skret does not explicitly teach (c) an acknowledger connected to said computer 
network to receive said sender resynchronization value from said sender (Trachewsky 
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Page 60 par. 458); said acknowledger returning said sender ^synchronization value to 
said sender as security assurance (Trachewsky Page 60 par. 458); 

Therefore it would have been obvious to one having ordinary skill in the art at the 
time the invention was made to employ the teachings of Trachewsky with in the system 
of Skret because it would allow to verify the acknowledgment of a sequence to other 
nodes (Trachewsky Page 59 par. 0454) Therefore it would have been obvious to one 
having ordinary skill in the art at the time of the invention was made to acknowledge a 
client request for ^synchronization because it would verify a client that the 
communication is resynchronized securely after desynchronization event occur when 
power loss. 

As per claim 7, Skret and Trachewsky teach all the subject matter as described above. In 
addition Skret teaches a method, wherein sending at least a representation of said client 
and said server ^synchronization values includes embedding said client and said server 
^synchronization values in at least one header, payload, or both of a data packet that 
conforms to IP sec (Internet Protocol Security) standards (Skret Fig. 3 A-3D). 

As per claim 8, Skret and Trachewsky teach all the subject matter as described above. In 
addition Skret teaches a method, further comprising performing said method using a state 
machine in network circuitry (Skret Col. 1 lines 1 1-24). 

As per claims 1 1 and 34, Skret and Trachewsky teach all the subject matter as described 
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above. In addition Skret teaches method/medium, further comprising reestablishing 
secured communication during a low-power state (Skret Col. 2 lines 10-27). 

As per claims 12 and 35, Skret and Trachewsky teach all the subject matter as described 
above. In addition Skret teaches the method/medium, further comprising reestablishing 
secured communication while said client device lacks an active operating system, lacks 
an active microprocessor, or both (Skret Col. 2 lines 10-27; loss of power or other 
reasons). 

As per claim 15, Skret and Trachewsky teach all the subject matter as described above. In 
addition Skret teaches the apparatus, wherein the stored security sequence value and the 
node security sequence value are embedded in at least one header, at least one payload, or 
both of a data packet that conforms to one or more IPsec (Internet Protocol Security) 
standards (Skret Fig. 3A-3D). 

As per claim 16, Skret and Trachewsky teach all the subject matter as described above. In 
addition Skret teaches the apparatus, wherein said stored security sequence value is 
periodically refreshed with a value at a selected interval from security sequence values 
already used in a secured communication session (Skret Col. 4 lines 48-59). 

As per claim 19, Skret and Trachewsky teach all the subject matter as described above. In 
addition Trachewsky teaches the resynchronizer, wherein at least one sender and at least 
one acknowledger are installed on any combination of a server and a client device in a 
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network (Trachewsky Page 60 par. 0458). The rational for combining are the same as 
claim 17 above. 

8. Claims 2, 10, and 24 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Skret (US Patent Number: 5,001,755) in view of Trachewsky et al. (Trachewsky, 
Pub. No.: US 2003/0206559 Al), and in further view of Dixon et al. (Dixon, US Patent 
No. 6,697,857 Bl). 

As per claim 2 and 10, Skret and Trachewsky teach all the subject matter as described 
above. 

Skret and Trachewsky do not explicitly teach performing anti-replay filtering; 

However Dixon teaches a method, further comprising performing anti-replay 
filtering using said security sequence values (Dixon Col. 1 lines 28-41); 

Therefore it would have been obvious to one having ordinary skill in the art at the 
time the invention was made to employ the teachings of Dixon with in the combination 
system of Skret and Trachewsky because it would allow to operate at the network layer to 
secure most types of IP packets (Dixon Col. 1 lines 28-40); Therefore it would have been 
obvious to one having ordinary skilled in the art at the time of the invention was made to 
apply the teachings of Dixon because it would ignore the data packets that have been 
previously received. 

As per claim 24, Skret and Trachewsky teach all the subject matter as described above. 
Skret and Trachewsky do not explicitly teach IPsec, 
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However Dixon discloses a method further comprising establishing secured 
communication using IPsec (Internet Protocol Security) standards (Dixon Col. 1 lines 27- 
41). 

Therefore it would have been obvious to one having ordinary skill in the art at the 
time the invention was made to employ the teachings of Dixon with in the combination 
system of Skret and Trachewsky because it would allow to operate at the network layer to 
secure most types of IP packets, and the authentication header would provide data 
communication with source authentication and integrity, while the encapsulated security 
payload provides confidentiality as well as a limited degree of source authentication 
(Dixon Col. 1 lines 28-40); Therefore it would have been obvious to one having ordinary 
skilled in the art at the time of the invention was made to apply the teachings of Dixon 
because it would authenticate the integrity of data transmitted between two nodes. 

9. THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of 
time policy as set forth in 37 CFR 1 .136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of the 
advisory action. In no event, however, will the statutory period for reply expire later than 
SIX MONTHS from the mailing date of this final action. 
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1 0. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Eleni A Shiferavv whose telephone number is 571-272- 
3867. The examiner can normally be reached on Mon-Fri 8:00am-5;00pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz R Sheikh can be reached on 571-272-3795. The fax phone number for 
the organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. Status 
information for unpublished applications is available through Private PAIR only. For 
more information about the PAIR system, see http://pair-direct.uspto.gov. Should you 
have questions on access to the Private PAIR system, contact the Electronic Business 
Center (EBC) at 866-217-9197 (toll-free). 



Eleni Shiferaw 
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